prowler-cloud/prowler

Support OpenStack Application Credentials for authentication

Open

#10 829 ouverte le 21 avr. 2026

Voir sur GitHub
 (1 commentaire) (0 réactions) (0 assignés)Python (1 322 forks)batch import
feature-requesthelp wantednot-plannedprovider/openstack

Métriques du dépôt

Stars
 (8 957 stars)
Métriques de merge PR
 (Merge moyen 9j 17h) (314 PRs mergées en 30 j)

Description

Feature search

  • I have searched the existing issues and this feature has not been requested yet or is already in our Public Roadmap

Which component would this feature affect?

Prowler CLI/SDK

Related to specific cloud provider?

Not provider-specific

New feature motivation

I would like to perform security scans on a self-hosted OpenStack environment. Currently, Prowler seems to rely on interactive user credentials (username/password). However, in my environment, authentication is managed via an IAM, which prevents the use of standard local user credentials.

Solution Proposed

Update the OpenStack provider in Prowler to support Application Credentials for authentication.

Use case and benefits

1)Enables seamless integration of Prowler into CI/CD pipelines for continuous security auditing of OpenStack projects 2)Encourages the "Principle of Least Privilege" by using application-specific credentials instead of sharing full user account passwords 3)Makes Prowler a viable tool for large-scale organizations that use federated identity (SSO) for their private cloud infrastructure.

Describe alternatives you've considered

I tried using application credentials as username and password, but doesn't work

Additional context

No response

Guide contributeur